CVE-2026-8209
Published
CVSS v3
N/A
CVSS v2
N/A
Affected
1
PROJECT
Description
Gibbon versions before v30.0.01 are affected by a path traversal vulnerability resulting in DOS by attempting extraction of web application PHP files, failed .zip extraction results in deletion of the file and a DOS condition. Successful exploitation requires Teacher or higher privileges. Exploitation could result in loss of availability of the web application.
Gibbon is a flexible, open source school management platform designed to make life better for teachers, students, parents and leaders.
GitHub